Nobody downloaded yet

Firewall in Linux - Essay Example

Comments (0) Cite this document
Summary
In this paper, we will have a short introduction to firewall in Linux based systems. We will discuss the way we can use IP Tables to set firewall rules in Linux environment and we will aim to an IP Table firewall definition for a system that requires some special settings…
Download full paperFile format: .doc, available for editing
GRAB THE BEST PAPER96.7% of users find it useful
Firewall in Linux
Read TextPreview

Extract of sample
"Firewall in Linux"

Download file to see previous pages It is often referred to as a packet filter as it examines each packet transferred in every network connection to, from, and within your computer. iptables replaced ipchains in the 2.4 kernel and added many new features including connection tracking (also known as stateful packet filtering).1
This means that the configuration for the firewall is set to "deny all connections" by default and the only way to establish connections between to point or two entity, we have to explicitly add new rules for them.
The term "INPUT" refers to any packet that is coming to this computer, "OUTPUT" means any packet that is generated by this computer and is leaving it. The term "FORWARD" also means the packets that are arriving from another computer but their final destination is one other computer. In fact we have used this computer to transit the packets between two different computers. The term "DROP" means that "the packet is not allowed through the firewall and the sender of the packet is not notified."2
In our firewall rule set, as you have seen above in section one, all incoming and outgoing packets are dropped unless we add new rules that allow our system to deal with. We have only allowed the system to use one connection by defining only one connection named "eth0" in the rules as follows:
# allow connections to my DNS servers
-A OUTPUT -d 2.3.4.11 -m state --state NEW -p udp --dport 53 -o eth0 -j ACCEPT

# allow outgoing connections to web servers
-A OUTPUT -d 0/0 -m state --state NEW -p tcp --dport http -o eth0 -j ACCEPT
-A OUTPUT -m state --state NEW -p tcp --dport https -o eth0 -j ACCEPT

# allow outgoing mail connections to my ISP's SMTP and POP3 server only
-A OUTPUT -d 2.3.4.5 -m state --state NEW -p tcp --dport smtp -o eth0 -j ACCEPT
-A OUTPUT -d 2.3.4.5 -m state --state NEW -p tcp --dport pop3 -o eth0 -j ACCEPT

As you can see, the rules above, allows the system for DNS access, allows to access to the web pages (http) and secure web pages (https).
3. The machine runs ssh and telnet.
In order to add to add these rules we need to add the following lines to our firewall rule:
# The machine runs SSH and TTELNET
-A INPUT -i $EXTIF -p tcp --dport 22 -j TCPACCEPT
-A INPUT -i $EXTIF -p tcp --dport 23 -j TCPACCEPT

4. The apache user, should not be allowed to surf the web.
# Do not allow incoming outgoing connections to web servers for apache (2.3.4.6)
-A INPUT -d 2.3.4.6 -m state --state NEW -p tcp --dport http -o eth0 -j REJECT
-A INPUT 2.3.4.6 -m state --state NEW -p tcp --dport https -o eth0 -j REJECT
-A OUTPUT -d 2.3.4.6 -m state --state NEW -p tcp --dport http -o eth0 -j REGECT
-A OUTPUT 2.3.4.6 -m state --sta ...Download file to see next pagesRead More
Cite this document
  • APA
  • MLA
  • CHICAGO
(“Firewall in Linux Essay Example | Topics and Well Written Essays - 1000 words”, n.d.)
Firewall in Linux Essay Example | Topics and Well Written Essays - 1000 words. Retrieved from https://studentshare.org/technology/1523178-firewall-in-linux
(Firewall in Linux Essay Example | Topics and Well Written Essays - 1000 Words)
Firewall in Linux Essay Example | Topics and Well Written Essays - 1000 Words. https://studentshare.org/technology/1523178-firewall-in-linux.
“Firewall in Linux Essay Example | Topics and Well Written Essays - 1000 Words”, n.d. https://studentshare.org/technology/1523178-firewall-in-linux.
  • Cited: 0 times
Comments (0)
Click to create a comment or rate a document
sponsored ads
We use cookies to create the best experience for you. Keep on browsing if you are OK with that, or find out how to manage cookies.
Let us find you another Essay on topic Firewall in Linux for FREE!
logo footer
Contact us:
+16312120006
Contact Us Now
FREE Mobile Apps:
  • StudentShare App Store
  • StudentShare Google play
  • About StudentShare
  • Testimonials
  • FAQ
  • Blog
  • Free Essays
  • New Essays
  • Essays
  • Miscellaneous
  • The Newest Essay Topics
  • Index samples by all dates
Join us:
Contact Us